Skiv

Security

Security you can inspect

Skiv is built to keep your code and credentials under your control — and open enough that you can verify it.

Local-first by design

Your code lives on your machine. The editor works fully offline, and nothing about your project leaves your device unless you ask it to.

Secure credentials

Tokens and connection secrets are kept in your operating system's credential store, never in plain-text configuration files.

Provider-direct AI

When you bring your own key, AI requests go straight from your device to the provider you choose. You decide what is shared and when.

Open to review

The core of Skiv is open source, so anyone can inspect how it handles files, credentials, and network access.

Reporting a vulnerability

If you believe you have found a security issue, please email support@skiv.dev with the details and steps to reproduce. We investigate every report and will work with you on a coordinated disclosure.